Girlelectao

**Name of the Vulnerable Software and Affected Versions** LibRaw versions prior to 0.20-Beta3 **Description** The issue is related to an out-of-bounds write in the `parse exif()` function located in `metadata/exif gps.cpp`. This occurs when an unrecognized `AtomName` and a zero value of `tiff nifds` are encountered. **Recommendations** For versions prior to 0.20-Beta3, update to version 0.20-Beta3 or later to resolve the issue. As a temporary workaround, consider restricting the use of the `parse exif()` function in `metadata/exif gps.cpp` until a patch is available.

**Name of the Vulnerable Software and Affected Versions** LibRaw (affected versions not specified) **Description** The issue is related to a buffer overflow in the `LibRaw::stretch()` function when processing CRW files, potentially allowing a remote attacker to cause a denial of service. The vulnerability is associated with the `LibRaw::stretch()` function in the `librawsrcpostprocessingaspect ratio.cpp` file. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.